NASLDB: Debian DSA-1285-1 : wordpress - several vulnerabilities
General
ID: 25152
Name: Debian DSA-1285-1 : wordpress – several vulnerabilities
Summary: Checks dpkg output for the updated package
Credits: –
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS Temporal Vector: –
Port: 0
Family: Debian Local Security Checks
Type: Local
Description
- CVE-2007-1622
Cross-site scripting (XSS) vulnerability in
wp-admin/vars.php in WordPress before 2.0.10 RC2, and
before 2.1.3 RC2 in the 2.1 series, allows remote
authenticated users with theme privileges to inject
arbitrary web script or HTML via the PATH_INFO in the
administration interface, related to loose regular
expression processing of PHP_SELF.
– CVE-2007-1893
WordPress 2.1.2, and probably earlier, allows remote
authenticated users with the contributor role to bypass
intended access restrictions and invoke the
publish_posts functionality, which can be used
to’publish a previously saved post.’
– CVE-2007-1894
Cross-site scripting (XSS) vulnerability in
wp-includes/general-template.php in WordPress before
20070309 allows remote attackers to inject arbitrary web
script or HTML via the year parameter in the wp_title
function.
– CVE-2007-1897
SQL injection vulnerability in xmlrpc.php in WordPress
2.1.2, and probably earlier, allows remote authenticated
users to execute arbitrary SQL commands via a string
parameter value in an XML RPC mt.setPostCategories
method call, related to the post_id variable.
Exploiting
Exploit Available: –
Exploitability Ease: –
Sources
CVE: CVE-2007-1622
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: –
Patch Release: 2007/05/01
Plugin Release: 2007/05/03
Plugin
Version: 1.9
Filename: debian_DSA-1285.nasl
Filesize: 4359 bytes
MD5 Hash: 5fde7b9d2b76748167c8893cb4617ec6
Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l
Dependencies: "ssh_get_info.nasl"
Copyright: This script is© 2007-2012 Tenable Network Security, Inc.
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack